Oval Definition:
oval:org.mitre.oval:def:6184
Revision Date
:
2009-11-30
Version
:
43
Title
:
WMP Heap Overflow Vulnerability
Description
:
Heap-based buffer overflow in Microsoft Windows Media Player 6.4 allows remote attackers to execute arbitrary code via (1) a crafted ASF file or (2) crafted streaming content, aka "WMP Heap Overflow Vulnerability."
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2009-2527
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s)
:
Windows Media Player
Definition Synopsis
OR
Microsoft Windows 2000 SP4 or later is installed
OR
Microsoft Windows XP (x86) SP2 is installed
OR
Microsoft Windows XP (x86) SP3 is installed
OR
Microsoft Windows XP x64 Edition SP2 is installed
OR
Microsoft Windows Server 2003 SP2 (x86) is installed
OR
Microsoft Windows Server 2003 SP2 (x64) is installed
AND
Windows Media Player 6.4 is installed.
AND
the version of strmdll.dll is less than 4.1.0.3938
BACK